When internet goes down network goes down

Started by foxint, January 09, 2025, 08:05:55 AM

Previous topic - Next topic
Print
Go Down Pages 1 2 3 4 5
User actions
January 11, 2025, 01:36:26 AM #30
QuoteThe only thing the ISP refuses to do is test the NBN Box, because the NBN people deny any service failures.
The ISP will not, because they do not own it. NBN Co will have verified connectivity to the box. Your problems lie elsewhere and right now it looks odd because all inter-PC communication should be passing through the switch without bothering Opnsense.

When you supplied the ARP table above, was the system connected to the internet at the time? If not, what is displayed after disconnecting?

You have not yet confirmed the answer to whether Unbound DNS is enabled or not. Please see the prior posts.

By the way, given it is your only LAN access, I strongly advise you tick the box "Prevent interface removal" in /Interfaces/LAN, and Save.
Deciso DEC697
+crowdsec +wireguard
January 11, 2025, 03:29:54 AM #31
Hi Passeri

My apologies – the internet was down.

When you supplied the ARP table above, was the system connected to the internet at the time? If not, what is displayed after disconnecting? I did not notice.

Unbound DNS is ticked

DNSmasq DNS is NOT ticked

Are these correct??

Thanks for the tip - "Prevent interface removal" in /Interfaces/LAN, and Save. Done.

Is there a solution?

Thanks
Dan
January 11, 2025, 03:52:45 AM #32
Code Select
Is there a solution?Undoubtedly, but I have not found it yet :). Fortunately, there are more experienced people also trying. I cannot guarantee success.

Good to know Unbound is on. I believe it is now unlikely the problem is failure of DNS lookups, where I was first going.

Sorry to keep asking you to check things, but my next request is a follow-up to an earlier one from Patrick M Hausen and cookiemonster. If you already know whether you have configured DHCP via ISC or Kea then only one of the following is needed:
Please advise your settings (show screenshots) for /Services/ISC DHCP4/LAN and for /Services/Kea DHCP [new]/Kea DHCP4

While you are there you will notice in each of those subdirectories you can look at Leases which will confirm that you have everything properly addressed. You mentioned static mappings, we need to make sure those are set up and working correctly as well.
Deciso DEC697
+crowdsec +wireguard
January 11, 2025, 04:40:15 AM #33
Hi Passeri,

Thank you.

I am bowled over by the kindness and the wealth of knowledge. It is overwhelming. Thank you.

Kea DHCP – no leases.

ISC DHCP – leases look good. A mixture of dynamic and static. The static ones are my PC's

Much appreciated

Thank you.

Dan
January 11, 2025, 04:40:52 AM #34
Last photo
January 11, 2025, 04:55:26 AM #35
Thank you for those. Things look good with one important caveat: your static leases are allocated in dynamic pool space. I see that your static leases are in the range 192.168.1.20 - 192.168.1.145 so change your Range, shown in OPN-2025-01-11-04.JPG, to start at 192.168.1.150. Renew leases on any dynamic clients -- this has to be done on the client -- to make sure they are in the new range. All static leases remain as they are.

If we are not nearing a solution now, and no-one else has comments on the configuration, then I would need to go back to look into your problem definition a bit more.
Deciso DEC697
+crowdsec +wireguard
January 11, 2025, 05:53:23 AM #36
Hi Passeri,

Thank you.

Just to confirm.

"change your Range, shown in OPN-2025-01-11-04.JPG, to start at 192.168.1.150".

So – 192.168-1-150 to ???? 192.168.1.245?

"Renew leases on any dynamic clients -- this has to be done on the client -- to make sure they are in the new range" – How do I do that?

"All static leases remain as they are." So NO change to the static leases.

Thanks

Dan
January 11, 2025, 06:20:20 AM #37
foxint, confirming each of your comments.

Renewing a lease depends on the client. I can tell you how to do that on many things that are not Windows. Look for words in your device settings like Network, DHCP, TCP/IP and Renew lease. Some AI thing in Google should have an answer too.
Deciso DEC697
+crowdsec +wireguard
January 11, 2025, 06:52:13 AM #38
Hi Passeri,

Thank you.

Just to confirm.

   My static leases are in the range 192.168.04 to 192.168.1.149
   
   My dynamic leases "should be" in the range of 192.168.150 to 192.168.1.245

What will happen if my dynamic leases are Not in the new range - 192.168.150 to 192.168.1.245?

My phone is 192.168.1.150. So it automatically went into the new range.

I am assuming this I OK
Thank you and thanks to all the great guys.

Eventually when I become brave enough, I will do a VPN and a Firewall. Not sure what a Firewall is, but I think I need one

Thanks

Regards
Dan
January 11, 2025, 07:33:55 AM #39 Last Edit: January 11, 2025, 07:35:47 AM by passeri
Quote from: foxint on January 11, 2025, 06:52:13 AMWhat will happen if my dynamic leases are Not in the new range - 192.168.150 to 192.168.1.245?
They will be, after renewal. You have told DHCP not to offer a dynamic lease outside that range. It won't.

If something not renewed has an existing lease in the static area, that is not a problem so long as it is not the same (stealing an existing static assignment). When it auto-renews at some point, it will be reassigned by DHCP into the dynamic pool.

Firewall? You have one. That is Opnsense. It's good.

There are many good options for a VPN if you have a good use for it, and different ways of setting it up for all or selected users, always on or not.

Now we wait to see whether your original problem is resolved or whether we need to pursue a new tack.
Deciso DEC697
+crowdsec +wireguard
January 11, 2025, 10:43:43 PM #40
thanks for helping passeri. Good spot with the static leases.
@foxint - all good now?
As passeri says once you have re-allocated static leases to your clients on OPN OUTSIDE the dynamic range, which you seem to have done now, those clients will get reallocated when their leases expire UNLESS you have set them on the client themselves.
Explaination: say you have allocated your windows laptop an ip of 192.168.1.150 on the Windows Operating System, then it will not change to the one you allocated on OPN Sense.
Leases normally default to 2 hrs I think on DHCP(ISC) not KEA.
January 11, 2025, 11:09:46 PM #41

You have been great, patient and very helpful.

I do not do this all all the time. I do not do it at all. It is interesting...but.

Yes, I set the static IP addresses in each PC and I am hoping they will stick.

Thanks again. I really do not know the full capability of OPNsense, but I hope I can slowly work my way through as I do things I think I need.

Thanks

Dan
January 11, 2025, 11:15:38 PM #42
No worries.
You need now to change the clients from static IP on them to DHCP. Then you assign them on OPN instead. There is a dance to do but is a one off. Do you know how?
Unless you have no requirement to have the same ip always and then they'll just get the next available from the pool if they reboot and there is contention for it.
January 12, 2025, 03:12:33 AM #43
Hi Cookie monster,

Thank you.

"You need now to change the clients from static IP on them to DHCP. Then you assign them on OPN instead".

Why?

I think and that is only me the novice. I need static IP because I synchronise my data each night. (Not 100% happy with my synchronisation programme, but II am working with it)..

Thanks
Dan
January 12, 2025, 03:58:49 AM #44
Hi Guys,

I have been moving files from one PC to another. The same problem: when the internet is down the transfer stops.....

I am confused.....

Dan
Print
Go Up Pages 1 2 3 4 5
User actions